removed array-includes dependency in favor of indexOf, which is a little more verbose but slightly faster and doesn't require a shim. Thanks again to Joseph Dykstra.

1.7.1

Diff

boutell

published 1.7.1 • 9 years ago

Changelog

Source

1.7.1:

removed lodash dependency, adding lighter dependencies and polyfills in its place. Thanks to Joseph Dykstra.

1.7.0

Diff

boutell

published 1.7.0 • 9 years ago

Changelog

Source

1.7.0:

introduced allowedSchemesByTag option. Thanks to Cameron Will.

1.6.1

Diff

boutell

published 1.6.1 • 10 years ago

Changelog

Source

1.6.1:

the string 'undefined' (as opposed to undefined) is perfectly valid text and shouldn't be expressly converted to the empty string.

1.6.0

Diff

boutell

published 1.6.0 • 10 years ago

Changelog

Source

1.6.0:

added textFilter option. Thanks to Csaba Palfi.

1.5.3

Diff

boutell

published 1.5.3 • 10 years ago

Changelog

Source

1.5.3:

do not escape special characters inside a script or style element, if they are allowed. This is consistent with the way browsers parse them; nothing closes them except the appropriate closing tag for the entire element. Of course, this only comes into play if you actually choose to allow those tags. Thanks to aletorrado.

1.5.2

Diff

boutell

published 1.5.2 • 10 years ago

Changelog

Source

1.5.2:

guard checks for allowed attributes correctly to avoid an undefined property error. Thanks to Zeke.

1.5.1

Diff

boutell

published 1.5.1 • 10 years ago

Changelog

Source

1.5.1:

updated to htmlparser2 1.8.x. Started using the decodeEntities option, which allows us to pass our filter evasion tests without the need to recursively invoke the filter.